Laws recognizing digital signatures
Lutz Donnerhacke
lutz at belenus.iks-jena.de
Mon Oct 27 12:11:55 PST 1997
* stewarts at ix.netcom.com wrote:
>The basic problem is
>- Person Alice may have a key
>- Merchant Bob has an online store
>- Customer X presents Bob with a key K, certified by CA Charlie,
> claiming that she's Alice, K is Alice's key,
> and downloads the merchandise from Bob.
>- Alice says it wasn't her and refuses to pay Bob the bill.
>
>So who gets stuck with the bill? Alice? Bob? Charlie?
Bob asks Charlie, who is really behind K. Charlie must be able to point to
Alice. If he can't do that, Bob will sue him. (Like any customer fooled by a
McLain control signed and certified by Verisign, which revoke the
certificate due to a request from Microsoft.)
Alice is responsible for her key K. If X can fool Bob, he has access to the
secret part of K, so the problem goes to Alice. Alice can inform Charlie for
revoking the certificate. If she did this, the problem went to Charlie. If
he updated his public database, the problem went to Bob. If Bob did non
check nor get a real timestamp (I.e. eternity logfile), he has lost.
Otherwise he lost, because he knew, that Alice's key was comprimised before
delivery.
More information about the cypherpunks-legacy
mailing list